Ibm

Tivoli Application Dependency Discovery Manager

22 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
5.4

CVE-2025-23227

  • EPSS 0.05%
  • Veröffentlicht 23.01.2025 18:15:33
  • Zuletzt bearbeitet 15.08.2025 12:46:20

IBM Tivoli Application Dependency Discovery Manager 7.3.0.0 through 7.3.0.11 is vulnerable to stored cross-site scripting. This vulnerability allows authenticated users to embed arbitrary JavaScript code in the Web UI thus altering the intended funct...

8.8

CVE-2023-47142

  • EPSS 0.04%
  • Veröffentlicht 02.02.2024 14:15:54
  • Zuletzt bearbeitet 21.11.2024 08:29:51

IBM Tivoli Application Dependency Discovery Manager 7.3.0.0 through 7.3.0.10 could allow an attacker on the organization's local network to escalate their privileges due to unauthorized API access. IBM X-Force ID: 270267.

6.1

CVE-2023-47144

  • EPSS 0.15%
  • Veröffentlicht 02.02.2024 13:15:08
  • Zuletzt bearbeitet 21.11.2024 08:29:51

IBM Tivoli Application Dependency Discovery Manager 7.3.0.0 through 7.3.0.10 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially ...

9.8

CVE-2023-47143

  • EPSS 0.1%
  • Veröffentlicht 02.02.2024 13:15:08
  • Zuletzt bearbeitet 21.11.2024 08:29:51

IBM Tivoli Application Dependency Discovery Manager 7.3.0.0 through 7.3.0.10 is vulnerable to HTTP header injection, caused by improper validation of input by the HOST headers. This could allow an attacker to conduct various attacks against the vuln...

7.5

CVE-2018-1675

  • EPSS 0.21%
  • Veröffentlicht 04.02.2019 21:29:00
  • Zuletzt bearbeitet 21.11.2024 04:00:11

IBM Tivoli Application Dependency Discovery Manager 7.2.2 and 7.3 could expose password hashes in stored in system memory on target systems that are configured to use TADDM. IBM X-Force ID: 145110.

8.8

CVE-2018-1455

  • EPSS 0.18%
  • Veröffentlicht 15.08.2018 15:29:00
  • Zuletzt bearbeitet 21.11.2024 03:59:51

IBM Tivoli Application Dependency Discovery Manager 7.2.2 and 7.3 is vulnerable to cross-site request forgery which could allow an attacker to execute malicious and unauthorized actions transmitted from a user that the website trusts. IBM X-Force ID:...

7.5

CVE-2013-3017

  • EPSS 0.25%
  • Veröffentlicht 09.07.2018 18:29:00
  • Zuletzt bearbeitet 21.11.2024 01:52:50

IBM Tivoli Application Dependency Discovery Manager (TADDM) before 7.2.1.5 and 7.2.x before 7.2.2 make it easier for remote attackers to defeat cryptographic protection mechanisms by leveraging support for weak SSL ciphers. IBM X-Force ID: 84353.

8.1

CVE-2013-3023

  • EPSS 0.29%
  • Veröffentlicht 24.05.2018 21:29:00
  • Zuletzt bearbeitet 21.11.2024 01:52:50

IBM Tivoli Application Dependency Discovery Manager (TADDM) 7.1.2 and 7.2.0 through 7.2.1.4 might allow remote attackers to obtain sensitive information about Tomcat credentials by sniffing the network for a session in which HTTP is used. IBM X-Force...

5.3

CVE-2013-3018

  • EPSS 0.14%
  • Veröffentlicht 24.05.2018 21:29:00
  • Zuletzt bearbeitet 21.11.2024 01:52:50

The AXIS webapp in deploy-tomcat/axis in IBM Tivoli Application Dependency Discovery Manager (TADDM) 7.1.2 and 7.2.0 through 7.2.1.4 allows remote attackers to obtain sensitive configuration information via a direct request, as demonstrated by happya...

5.5

CVE-2013-4040

  • EPSS 0.04%
  • Veröffentlicht 01.05.2018 18:29:00
  • Zuletzt bearbeitet 21.11.2024 01:54:46

IBM Tivoli Application Dependency Discovery Manager (TADDM) 7.1.2.x before 7.2.1.5 and 7.2.x before 7.2.2.0 on Unix use weak permissions (755) for unspecified configuration and log files, which allows local users to obtain sensitive information by re...